all InfoSec news
Widespread Logic Controller Flaw Raises the Specter of Stuxnet
Feb. 5, 2023, 11:01 p.m. | Lily Hay Newman
The RISKS Digest catless.ncl.ac.uk
Lily Hay Newman, *Ars Technica*, 11 Jan 2023, via ACM TechNews
Siemens has disclosed that a vulnerability in its SIMATIC S7-1500 series of
programmable logic controllers could allow attackers to install malicious
firmware and assume full control of the devices. Red Balloon Security
researchers discovered the vulnerability, which is the result of a basic
error in the cryptography's implementation. However, because the scheme is
physically burned onto a dedicated ATECC CryptoAuthentication chip, a
software patch cannot fix the vulnerability. Siemens …
ars technica attackers basic control controllers cryptography devices error firmware flaw install lily hay newman logic malicious programmable logic controllers red balloon red balloon security researchers result security security researchers series siemens simatic stuxnet technews vulnerability
More from catless.ncl.ac.uk / The RISKS Digest
EFI IPv6/PXE Security Flaw
4 months, 1 week ago |
catless.ncl.ac.uk
Imaging privacy threats from an ambient light sensor
4 months, 1 week ago |
catless.ncl.ac.uk
Re: CLEAR wants to scan your face at airports. Privacy experts are worried.
4 months, 1 week ago |
catless.ncl.ac.uk
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)